Krebs on Security

Java: A Gift to Exploit Pack Makers

I have long urged readers who have no need for Java to remove the program, because failing to keep this software updated with the latest security patches exposes users to dangerous, ubiquitous attacks ...
Krebs on Security

New Java Exploit to Debut in BlackHole Exploit Kits

Malicious computer code that leverages a newly-patched security flaw in Oracle’s Java software is set to be deployed later this week to cybercriminal operations powered by the BlackHole exploit pack.
Threat Post

New Java Vulnerability Coming Bundled With Exploit Kits

A recently discovered Java vulnerability that’s been circulating throughout the hacking underground has begun to show up alongside the BlackHole exploit kit, according to a post on Brian Krebs’ ...
CSOonline

Latest Java zero-day exploit renews calls to disable it

Oracle contributes to the problem by not working more closely with the security industry on Java defenses, one security expert said A zero-day Java exploit found for sale in the criminal underground ...
Inverse

Widespread Java exploit could spread malware to millions, CSIA warns

A newly discovered vulnerability in Java-based software could potentially affect millions of devices around the world, the Department of Homeland Security warned in a briefing this week. The ...
PC World

Latest Java zero-day exploit is linked to Bit9 hacker attack

The attacks discovered last week that exploited a previously unknown Java vulnerability were likely launched by the same attackers that previously targeted security firm Bit9 and its customers, ...